Peter said:
Hello! I'm planning to install Windows XP Home with
Service pack one, from a CD. I'd like to download the
most critical patches before I upgrade, and burn them to a
CD, so I can apply them before I plug in my internet. Can
anyone point me at a list of 'Apply Me Right Now' level
patches for this edition? Thanks in advance.
I suggest three downloads burned to CD/installed onto the system and one
preventative measure before ever connecting your newly installed Windows XP
computer to the Internet.
1) Windows XP SP1a
http://www.microsoft.com/windowsxp/downloads/updates/sp1/network.mspx
or
http://snipurl.com/4ow7
** In your case - if this is already slipstreamed into your CD (it says
"SP1" on it), then you don't have to get this one.
2) Update Rollup 1 for Microsoft Windows XP
http://www.microsoft.com/downloads/...00-d7be-48e3-abcc-961602bd72c2&displaylang=en
or
http://snipurl.com/2qdx
3) Security Update for Microsoft Windows - Sasser
http://www.microsoft.com/downloads/...9E-DA3F-43B9-A4F1-AF243B6168F3&displaylang=en
or
http://snipurl.com/64oy
4) Install the three above things onto your Windows XP install before ever
connecting the PC to the Internet in ANY way. Once you have those three
installed, then turn on the Internet Connection Firewall built into Windows
XP and you may now connect to the Internet with a bit more confidence.
5) Once connected to the Internet, go to the Windows Update site (
http://windowsupdate.microsoft.com/ ) and scan for and install any and all
"Critical" updates.
That should make the computer a much more stable device and definitely a bit
more secure. It also will prevent any incidents of Sasser/Blaster from
infecting your PC upon first contact with the Internet.
You have several other options, as well.
You could create a new Windows XP CD with all of the patches (practically)
rolled up (slipstreamed and/or installed before the first GUI boot) in it.
One of the best resources on the Internet I have found on this and the likes
is at
http://unattended.msfn.org/ - which will (forums and just the page
itself) walk you through how to make a very complete install CD of Windows
XP.
You could order the the Windows Security Update CD from
http://www.microsoft.com/security/protect/cd/order.asp and wait on it to get
to you.
You could download most of the updates for Windows XP (SP1a and beyond) and
burn them all to CD and install them from there before connecting to the
Internet. The list is quite long and I have slacked in updating it since
May, but here is that list:
Below this point you will find the Windows XP (32bit, English) editions
updates from SP1 and through the end of May 2004. You will also find some
other downloads (tweaks, plugins, extras) that you may find useful. If all
of this is put on one CD, you pretty much have a way to patch through May
2004 any Windows XP (32bit, english) machine without a network connection at
all.
You can install these in the order given, and if you (for whatever crazy
reason) substitute the individual packages in for the Rollup, those are in
order at the bottom of the post, just pretend they are up top with the
roll-up.
Windows XP SP1a:
http://www.microsoft.com/windowsxp/downloads/updates/sp1/network.mspx
or.. Short Link:
http://snipurl.com/4ow7
Update Rollup 1 for Microsoft Windows XP:
http://www.microsoft.com/downloads/...00-d7be-48e3-abcc-961602bd72c2&displaylang=en
or.. Short Link:
http://tinyurl.com/r4lh
** At the bottom of the post, the Rollup is broken down into component
patches. Why? I don't know - just in case that is needed.
- April 2003, Cumulative Patch for Outlook Express 6
http://www.microsoft.com/windows/ie/downloads/critical/330994/default.asp
- Flaw in Windows Script Engine May Allow Code to Run
http://www.microsoft.com/downloads/...D4-B4D6-49D5-8C58-199BDC731B64&displaylang=en
or.. Short Link:
http://tinyurl.com/m187
- Flaw in the Microsoft VM Could Enable System Compromise
"816093" - Windows Update - Windows Catalog only - Search for the "Windows
XP SP1" update containing "816093" --
http://v4.windowsupdate.microsoft.com/catalog
- Vulnerability in Authenticode Verification Could Allow Remote Code
Execution
http://www.microsoft.com/downloads/...03-D767-4D68-9BA7-055E93E87847&displaylang=en
or.. Short Link:
http://tinyurl.com/2qy2t
- Flaw in NetBIOS Could Lead to Information Disclosure
http://www.microsoft.com/downloads/...86-5B8C-401A-88B2-4443FFB9EDC3&displaylang=en
or.. Short Link:
http://tinyurl.com/3b8k3
- Buffer Overrun in the ListBox and in the ComboBox Control Could Allow Code
Execution
http://www.microsoft.com/downloads/...AC-5B7B-4B99-BF3E-F57352E4C507&displaylang=en
or.. Short Link:
http://tinyurl.com/29k68
- Buffer Overrun in Windows Help and Support Center Could Lead to System
Compromise
http://www.microsoft.com/downloads/...58-0BEB-4B2C-A095-66CA09DFDAC6&displaylang=en
or.. Short Link:
http://tinyurl.com/2d8z4
- Buffer Overrun in Messenger Service Could Allow Code Execution
http://www.microsoft.com/downloads/...09-4B0A-4438-A0B9-5B67414C3833&displaylang=en
or.. Short Link:
http://tinyurl.com/skrz
- Windows Media Player 9 and Movie Maker 2
http://unattended.msfn.org/files/WMP9_MM2_ENU.exe
- Update for Windows Media Player URL Script Command Behavior
http://www.microsoft.com/downloads/...5E-0C55-452E-A0FA-3AA165E667C1&displaylang=en
or.. Short Link:
http://tinyurl.com/qz5n
- Cumulative Update for Microsoft RPC/DCOM
http://www.microsoft.com/downloads/...BB-DA77-448D-8FF0-0A649A0D8FC3&displaylang=en
or.. Short Link:
http://tinyurl.com/27saq
- Some URL script commands do not work after you apply 828026
http://www.microsoft.com/downloads/...78-DB07-4A36-8D64-8812E7F2AF70&displaylang=en
or.. Short Link:
http://tinyurl.com/2b23q
- February 2004, Cumulative Security Update for Internet Explorer
http://www.microsoft.com/downloads/...68-B59A-47C0-90D3-0C884910BC97&displaylang=en
or.. Short Link:
http://tinyurl.com/2eeyl
- Wininet retries POST requests with a blank header
http://www.microsoft.com/downloads/...28-5053-48A7-8526-BD38215C74B2&displaylang=en
or.. Short Link:
http://tinyurl.com/3a5ag
- Security Update for Microsoft Windows - Sasser
http://www.microsoft.com/downloads/...9E-DA3F-43B9-A4F1-AF243B6168F3&displaylang=en
or.. Short Link:
http://tinyurl.com/2vj4h
- MDAC 2.8
http://www.microsoft.com/downloads/...e3-c795-4b7d-b037-185d0506396c&DisplayLang=en
or.. Short Link:
http://tinyurl.com/iza5
- Vulnerability in the Microsoft Jet Database Engine could permit code
execution
http://www.microsoft.com/downloads/...CB-075E-4B63-BC45-06EBBF41C6B5&displaylang=en
or.. Short Link:
http://tinyurl.com/2lhmb
- April Cumulative Security Update for Outlook Express
http://www.microsoft.com/downloads/...BD-1B5F-4B21-8DB6-EDE1C73F97B5&displaylang=en
or.. Short Link:
http://tinyurl.com/3994g
- Windows XP Documentation Update
"Q327405" - Windows Update - Windows Catalog only - Search for the "Windows
XP SP1" update containing "Q327405" - one of the top ones at 1.3MB --
http://v4.windowsupdate.microsoft.com/catalog
- DirectX 9
(It's RAR'd) -
http://unattended.msfn.org/files/DX9NTopk.rar
- Dot Net FrameWork
http://download.microsoft.com/download/a/a/c/aac39226-8825-44ce-90e3-bf8203e74006/dotnetfx.exe
or.. Short Link:
http://tinyurl.com/dzyu
- HighMAT Support in XP CD Writing Wizard
http://download.microsoft.com/downl...50-4fc3-9f27-ba27816ec844/HMTCDWizard_enu.exe
or.. Short Link:
http://tinyurl.com/25tva
- Jet 4.0 Service Pack 8
http://www.microsoft.com/downloads/...c4-350e-4cd0-a12a-d7f70a153156&displaylang=en
or.. Short Link:
http://tinyurl.com/r9mu
- Windows XP SP1 USB 1.1 and 2.0 Update
http://www.microsoft.com/downloads/...67-56a0-4956-b7fe-e85b688b7f86&displaylang=en
or.. Short Link:
http://tinyurl.com/2zmnv
- Windows Error Reporting
http://www.microsoft.com/downloads/...d8-5053-436e-b898-9cd995292baa&displaylang=en
or.. Short Link:
http://tinyurl.com/kdg5
- Set Program Access and Defaults Update
http://www.microsoft.com/downloads/...40-a311-4d3c-a7be-2f86a8a5d450&displaylang=en
or.. Short Link:
http://tinyurl.com/ds3a
- Advanced Networking Pack for Windows XP
http://www.microsoft.com/downloads/...82-8CE6-4739-97C0-1A52A6F005E4&displaylang=en
or.. Short Link:
http://tinyurl.com/2r79w
- DirectShow Playback Support Update
"810243" - Windows Update - Windows Catalog only - Search for the "Windows
XP SP1" update containing "810243" --
http://v4.windowsupdate.microsoft.com/catalog
- Program Compatibility Fixes Stop Working
http://www.microsoft.com/downloads/...FamilyID=340de75d-8566-4277-8ac4-0f4352af33c0
or.. Short Link:
http://tinyurl.com/ljar
- Game Stops Responding (Hangs)
"327979" - Windows Update - Windows Catalog only - Search for the "Windows
XP SP1" update containing "327979" --
http://v4.windowsupdate.microsoft.com/catalog
- You Cannot Preview a Fax
http://www.microsoft.com/downloads/...FamilyID=98324096-E978-4B0A-9C33-2C6466522E5C
or.. Short Link:
http://tinyurl.com/759f
- ASN.1 vulnerability could allow code execution
http://www.microsoft.com/downloads/...97-D4AE-48E9-ACD0-1343D89CCBBA&displaylang=en
or.. Short Link:
http://tinyurl.com/284mg
- MDAC Security Patch
http://www.microsoft.com/downloads/...E8-C14A-47B4-BFCC-87988E062D91&displaylang=en
or.. Short Link:
http://tinyurl.com/yt3pa
- Vulnerability in Help and Support Center
http://www.microsoft.com/downloads/...A3-D793-47B4-A607-948CAA5B3454&displaylang=en
or.. Short Link:
http://tinyurl.com/2wvko
- Microsoft Journal Viewer
http://www.microsoft.com/downloads/...familyid=fad44098-8b73-4e06-96d4-d1eb70eacb44
or.. Short Link:
http://tinyurl.com/2wx92
- MSN Messenger 6.1
http://www.softwarepatch.com/internet/msnmess.html
- Flash Player 7
http://www.softwarepatch.com/internet/flash.html
- Shockwave 10
http://www.softwarepatch.com/internet/shockwave.html
- Quicktime 6.5.1
http://www.softwarepatch.com/internet/quicktime.html
- Spybot Search and Destroy (Spyware Removal/Prevention)
http://www.spybot-updates.com/files/spybotsd13rc5.exe
- SpywareBlaster (Spyware Prevention)
http://www.javacoolsoftware.com/sbdownload.html
- Adobe Acrobat Reader 6.01
http://www.adobe.com/products/acrobat/alternate.html
- Real Alternative 1.22 (I hate Real Player)
http://fileforum.betanews.com/detail.php3?fid=1054136293
- ISO Recorder Powertoy for XP
http://fileforum.betanews.com/detail.php3?fid=1010212925
- TweakUI and other XP Powertoy
http://www.microsoft.com/windowsxp/pro/downloads/powertoys.asp
** If you think you don't want to do the Update Rollup 1 for Windows XP and
want to instead, break it down into it's core components - here they are.
(Although, to be honest I have NO IDEA why anyone would ever want to
download these 22 patches instead of just the one. heh)
- Hyperlinks Open in Internet Explorer Instead of in Default Browser or Help
and Support Center
http://www.microsoft.com/downloads/...C7-22B9-4D77-B0A4-5B4BB4D12FF0&displaylang=en
or.. Short Link:
http://tinyurl.com/2unrr
- An Unchecked Buffer in the Windows Shell Could Permit Your System to Be
Compromised
http://www.microsoft.com/downloads/...F5-A2E1-4E25-9D16-502886161A35&displaylang=en
or.. Short Link:
http://tinyurl.com/msyb
- Buffer Overrun in Windows Kernel Message Handling Could Lead to Elevated
Privileges
http://www.microsoft.com/downloads/...15-3DEC-4A4B-826A-4E0FEAB42323&displaylang=en
or.. Short Link:
http://tinyurl.com/yutju
- Flaw in Windows WM_TIMER Message Handling Can Enable Privilege Elevation
http://www.microsoft.com/downloads/...55-E598-4EB1-AABE-DB3BA0807685&displaylang=en
or.. Short Link:
http://tinyurl.com/2ab8y
- Buffer Overrun in RPC May Allow Code Execution
http://www.microsoft.com/downloads/...6C-C5B6-44AC-9532-3DE40F69C074&displaylang=en
or.. Short Link:
http://tinyurl.com/khuz
- Flaw in RPC Endpoint Mapper Could Allow Denial of Service Attacks
http://www.microsoft.com/downloads/...69-3258-4439-9AE7-5D86813B4D9E&displaylang=en
or.. Short Link:
http://tinyurl.com/yqr3
- Unchecked Buffer in Windows Help Facility May Allow Attacker to Run Code
http://www.microsoft.com/downloads/...FamilyID=F699BB98-CF57-4E5E-A13F-CD04D4D94308
or.. Short Link:
http://tinyurl.com/4m8h
- Unchecked Buffer in Windows Redirector May Permit Privilege Elevation
http://www.microsoft.com/downloads/...1F-505E-48ED-B9BD-CDAC0F8A2BC1&displaylang=en
or.. Short Link:
http://tinyurl.com/ytwgv
- Unchecked Buffer in Windows Component May Cause Web Server Compromise
http://www.microsoft.com/downloads/...7D-F2D5-47B8-AB98-77BA7501B00B&displaylang=en
or.. Short Link:
http://tinyurl.com/kii2
- Certificate Validation Flaw Might Permit Identity Spoofing
http://www.microsoft.com/downloads/...FamilyID=75CE60AF-BF36-4625-AF5C-49F6193D52E2
or.. Short Link:
http://tinyurl.com/2ob7y
- Flaw in SMB Signing May Permit Group Policy to Be Modified
http://www.microsoft.com/downloads/...31-742b-4426-ad45-f09d3aed16cb&DisplayLang=en
or.. Short Link:
http://tinyurl.com/2c98q
- Buffer Overrun in Windows Could Lead to Data Corruption
http://www.microsoft.com/downloads/...78-646C-4F82-BF74-12298ED5D8CF&displaylang=en
or.. Short Link:
http://tinyurl.com/2dd4d
- Cannot Install Driver Updates from the Windows Update Web Site
http://www.microsoft.com/downloads/...9A-9B03-4C3B-9EA3-03F926A0BC50&displaylang=en
or.. Short Link:
http://tinyurl.com/35saq
- Unchecked Buffer in the Locator Service Might Permit Code to Run
http://www.microsoft.com/downloads/...7E-6217-4ABD-A244-0A53320B2813&displaylang=en
or.. Short Link:
http://tinyurl.com/ypsth
- Buffer Overrun in the HTML Converter Could Allow Code Execution
http://www.microsoft.com/downloads/...AB-25F8-462E-ADC0-5AC6BD0116DE&displaylang=en
or.. Short Link:
http://tinyurl.com/2x5rb
- Unchecked Buffer in File Decompression Functions May Allow Attacker to Run
Code
http://www.microsoft.com/downloads/...FamilyID=D7713F66-7452-46F1-B9DB-ED533CF826E9
or.. Short Link:
http://tinyurl.com/yv5p6
- You Cannot Create a Network Connection After You Restore Windows XP
"Q329441" - Windows Update - Windows Catalog only - Search for the "Windows
XP SP1" update containing "Q329441" --
http://v4.windowsupdate.microsoft.com/catalog
- Windows Update 643 Error and the Catalog Database
"Q817287" - Windows Update - Windows Catalog only - Search for the "Windows
XP SP1" update containing "Q817287" --
http://v4.windowsupdate.microsoft.com/catalog
- Unchecked Buffer in Windows Shell Might Permit System Compromise
http://www.microsoft.com/downloads/...F2-2653-4767-A85D-24BF68D28D20&displaylang=en
or.. Short Link:
http://tinyurl.com/kr0k
- Unchecked Buffer in PPTP Implementation May Permit Denial-of-Service
Attacks
http://www.microsoft.com/downloads/...FamilyID=E0633266-F24F-457B-BC91-84A8210B0FBF
or.. Short Link:
http://tinyurl.com/35fk2
- HTML Help Update to Limit Functionality When It Is Invoked with the
window.showHelp Method
http://www.microsoft.com/downloads/...26-ae89-4cb3-a819-e6da160f2e66&DisplayLang=en
or.. Short Link:
http://tinyurl.com/5g0o
- A Buffer Overrun in RPCSS May Allow Code Execution
http://www.microsoft.com/downloads/...ae-a1ba-4d4a-b424-95d32cfc8cba&displaylang=en
or.. Short Link:
http://tinyurl.com/n7ki